After Logging into WordPress with Toolset Login ShortCodes I am redirected to the WP Admin

This thread is resolved. Here is a description of the problem and solution.

Problem:
After Logging into WordPress with Toolset Login ShortCodes I am redirected to the WP Admin
How can I avoid that?

Solution:
It's the native WordPress default, but you can set a redirect on success in Toolset Login ShortCode, so to avoid a redirect to the admin.
To completely remove admin access from that user, you can try this:
https://toolset.com/forums/topic/after-logging-in-with-my-new-password-it-logs-me-into-wordpress-as-a-subscriber/#post-1194640

This support ticket is created 5 years, 9 months ago. There's a good chance that you are reading advice that it now obsolete.

This is the technical support forum for Toolset - a suite of plugins for developing WordPress sites without writing PHP.

Everyone can read this forum, but only Toolset clients can post in it. Toolset support works 6 days per week, 19 hours per day.

This topic is split from https://toolset.com/forums/forum/professional-support/

Sun	Mon	Tue	Wed	Thu	Fri	Sat
-	-	14:00 – 20:00	14:00 – 20:00	14:00 – 20:00	14:00 – 20:00	14:00 – 20:00
-	-	-	-	-	-	-

Supporter timezone: Asia/Ho_Chi_Minh (GMT+07:00)

Tagged: Access plugin, Layouts plugin

This topic contains 2 replies, has 2 voices.

Last updated by Dee_DeeA2948 5 years, 9 months ago.

Assisted by: Beda.

Author

Posts

February 2, 2019 at 8:58 am #1194638

Dee_DeeA2948

On the reset password page, this is the shortcode that I’m using:
[wpv-reset-password-form redirect_url='hidden link'
(I enter a new password & click submit)
This is the redirect link that populates after resetting my password: hidden link

***The problem with this is when I login, it does login me in my website as member, but this ALSO logs me into wordpress. I don’t want my subscribers to see the wordpress settings, dashboard, etc.
Because they’re assigned to the “subscriber” role, they can’t make changes to the site, but this is still an issue.***

February 2, 2019 at 9:07 am #1194640

Beda

This is WordPress native behaviour, as long no redirect on the login form is specified.

The user, even a Subscriber, can see the Dashboard in WordPress (but only limited things, for example, they cannot edit Theme settings, or so).

To restrict this (remove access totally to the backend) you could need custom scripts, because Toolset Access, the plugin that allows you to control what users do, while it could create a custom role which has almost no rights (copy of guest, then increase capabilities), cannot remove access to SINGLE backend items like this or that page. It handles this by capabilities and user levels, which often include several locations
You could, however, try if a copied Guest role with some additional rights would serve your needs.
https://toolset.com/documentation/user-guides/managing-wordpress-admin-capabilities-access/

Maybe easier, depending on the setup and site, is to apply a custom snippet targetting that user role, and avoid (redirect) them from accessing the backend.
You can study and use such an example snippet here:
hidden link

Or, there are plugins that do exactly what you need without the need of applying custom code:
hidden link

February 2, 2019 at 7:04 pm #1194757

Dee_DeeA2948

My issue is resolved now. Thank you!